Mercurial > hg > nginx-tests
diff proxy_ssl_certificate.t @ 1488:dbce8fb5f5f8
Tests: align with OpenSSL security level 2.
This updates minimum requirements to 2048 bit RSA keys and SHA-2 message digest.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Tue, 09 Jul 2019 13:37:55 +0300 |
| parents | eadd24ccfda1 |
| children | b5036a0f9ae0 |
line wrap: on
line diff
--- a/proxy_ssl_certificate.t +++ b/proxy_ssl_certificate.t @@ -100,7 +100,7 @@ EOF $t->write_file('openssl.conf', <<EOF); [ req ] -default_bits = 1024 +default_bits = 2048 encrypt_key = no distinguished_name = req_distinguished_name [ req_distinguished_name ] @@ -118,7 +118,7 @@ foreach my $name ('1.example.com', '2.ex foreach my $name ('3.example.com') { system("openssl genrsa -out $d/$name.key -passout pass:$name " - . "-aes128 1024 >>$d/openssl.out 2>&1") == 0 + . "-aes128 2048 >>$d/openssl.out 2>&1") == 0 or die "Can't create private key: $!\n"; system('openssl req -x509 -new ' . "-config $d/openssl.conf -subj /CN=$name/ "